Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/dmTKNbqTC7z4xDlHAxQT-Qst_Sc.roa
File: dmTKNbqTC7z4xDlHAxQT-Qst_Sc.roa (raw, json)
Hash identifier: tW9AiDcTFkE8YaxJb4GL7HndERHWKm0BUZYTTN146x0=
Subject key identifier: 76:64:CA:35:BA:93:0B:BC:F8:C4:39:47:03:14:13:F9:0B:2D:FD:27
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0188B50636F8C3858F83B46D5354B4CE0EE1
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/dmTKNbqTC7z4xDlHAxQT-Qst_Sc.roa
Signing time: Tue 13 Jun 2023 13:51:03 +0000
ROA not before: Tue 13 Jun 2023 13:51:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 80.71.230.0/24 maxlen: 24
81.29.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Jun 2023 13:52:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b5:06:36:f8:c3:85:8f:83:b4:6d:53:54:b4:ce:0e:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jun 13 13:51:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7664ca35ba930bbcf8c43947031413f90b2dfd27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6e:ad:4b:fc:64:29:7b:f3:ed:4e:a5:a6:85:
88:1e:ff:45:1c:3f:68:13:27:28:9e:b1:41:b6:4e:
f4:7d:3b:35:10:b5:b0:d6:c8:d6:c1:67:c2:ca:ed:
3c:8a:30:8f:38:15:60:f6:ab:75:31:f5:d0:99:c3:
b7:ca:b7:e1:91:d0:ae:f9:6f:36:62:23:3a:dd:78:
59:b5:97:5b:8e:67:37:62:0a:b3:be:d9:56:79:2f:
8d:f2:1c:d6:b8:67:f1:b8:20:25:22:16:21:28:90:
34:db:a8:3b:3c:05:21:7f:5d:68:c8:7d:4f:20:bc:
7e:72:ec:a7:8b:6a:f9:2d:86:61:f9:0c:64:e3:ca:
c4:f5:67:de:4f:5d:c0:2f:28:3e:21:2f:9a:13:fe:
9e:0f:17:53:ca:49:b5:66:3b:07:3e:48:b8:1e:3e:
2e:3f:d1:c0:8a:51:53:c7:16:fa:de:7d:29:10:3d:
b1:68:63:6e:6b:ba:bb:70:f1:35:c0:70:14:34:11:
86:a1:e9:4c:51:d2:35:9f:46:a3:47:46:9c:dc:c7:
67:fd:59:39:d1:a2:9e:09:ca:27:5c:41:2e:37:ae:
22:36:27:3d:0a:b4:00:79:52:aa:d0:4d:7c:cc:11:
4c:91:83:33:7c:b7:ad:df:ff:92:53:76:47:92:8b:
c5:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:64:CA:35:BA:93:0B:BC:F8:C4:39:47:03:14:13:F9:0B:2D:FD:27
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/dmTKNbqTC7z4xDlHAxQT-Qst_Sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.230.0/24
81.29.155.0/24
Signature Algorithm: sha256WithRSAEncryption
25:cb:42:2d:f6:1a:1d:4b:6a:12:fb:ca:da:50:9c:b4:42:b4:
57:5a:7e:9b:59:5d:99:f6:49:86:11:9d:15:43:2a:9f:b2:20:
6f:20:67:59:c4:56:d7:b9:8b:c6:c1:bf:1f:6e:21:65:e8:31:
25:c9:65:0c:6b:3f:cf:89:07:4a:63:ff:cd:4e:ad:2f:16:22:
90:8d:0b:70:09:f0:02:d2:f1:95:6b:bc:e9:42:66:55:34:33:
83:46:14:4a:72:a8:ff:40:a6:63:ed:05:a4:fc:6b:a0:9b:68:
90:d3:69:48:9e:c4:fc:23:97:58:28:67:fc:6c:25:c5:5c:f8:
0c:bb:7c:96:2a:87:a0:14:b3:6d:bb:b8:81:92:fd:fb:80:90:
27:ef:07:51:ee:30:e8:6f:47:74:06:21:8f:a0:e8:6f:e2:ff:
b2:02:1e:1d:60:72:a5:53:0c:6a:5e:f1:90:0f:39:8e:72:7a:
f1:f0:51:3b:d9:81:ba:ef:49:e0:e0:c9:f3:ff:3a:14:22:78:
27:53:d4:f3:20:cf:6c:c5:cf:02:40:49:51:97:9e:33:bf:ac:
d0:f2:2e:c9:f6:f6:66:21:f4:4b:d0:cd:2e:c5:29:ae:69:64:
47:0c:f3:40:8e:39:29:f3:54:6f:e5:fd:a3:e5:4f:30:87:e7:
1b:4b:c3:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:36 2024 by rpki-client on console-ams.rpki-client.org